CVE-2004-2778

high

Description

Ebuild in Gentoo may change directory and file permissions depending on the order of installed packages, which allows local users to read or write to restricted directories or execute restricted commands via navigating to the affected directories, or executing the affected commands.

References

https://bugs.gentoo.org/show_bug.cgi?id=607430

https://bugs.gentoo.org/show_bug.cgi?id=607426

https://bugs.gentoo.org/show_bug.cgi?id=58611

https://bugs.gentoo.org/show_bug.cgi?id=396153

https://bugs.gentoo.org/show_bug.cgi?id=141619

http://www.openwall.com/lists/oss-security/2017/01/28/7

Details

Source: Mitre, NVD

Published: 2017-06-27

Updated: 2026-05-13

Risk Information

CVSS v2

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00048